$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/2FBEB0B0D5B011EC90A8A031C4F9AE02.roa File: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (raw, json) Hash identifier: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA= Subject key identifier: E2:6C:A9:03:C4:EE:7B:1D:6E:B7:6E:C1:FD:F2:74:7B:CD:78:BF:03 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 02D5 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/2FBEB0B0D5B011EC90A8A031C4F9AE02.roa Signing time: Fri 31 Jan 2025 17:56:09 +0000 ROA not before: Fri 31 Jan 2025 17:56:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135042 IP address blocks: 103.207.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 725 (0x2d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD Validity Not Before: Jan 31 17:56:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=679d0eb9-994c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1b:39:28:3e:95:1d:33:b6:19:75:a7:46:b8: 0f:39:d0:21:fe:22:64:0e:d7:f4:7d:93:b3:e4:bf: f1:9e:55:97:63:ca:54:ec:09:27:af:4f:61:44:7f: 46:2a:6d:54:85:5f:b3:c1:72:f3:89:08:e3:6e:d8: 9a:c7:26:91:82:0c:a6:4b:79:5c:1b:82:f5:7c:e6: f7:68:d6:1e:9c:db:a7:83:ff:3e:4d:a4:03:1e:38: cb:41:18:ce:df:73:7a:86:14:45:a2:29:76:5c:57: 9f:fb:01:ab:05:d5:ea:c4:35:77:60:fc:3a:96:ea: 0b:29:1f:5e:1d:a9:6b:89:6c:53:82:c7:a0:3a:67: 38:0b:97:95:dc:2b:cd:05:b9:11:5c:7d:19:06:47: 0d:74:e5:34:28:68:3a:d5:fa:e8:da:06:a5:b8:9c: f8:ec:f9:83:dc:cc:db:8e:25:c7:59:7d:de:66:2a: aa:ec:0d:9a:48:09:53:73:80:e5:c1:ab:ad:54:5d: b6:b9:6c:cb:89:9d:5b:63:b9:0a:74:e3:32:01:2d: 16:dd:c1:78:2a:55:20:6d:a2:b3:73:e9:e3:ea:f0: f2:98:c4:83:6b:c0:34:32:1d:0c:d8:0f:d8:99:e3: 1d:94:53:d7:4f:50:cb:d6:bc:f2:6f:c4:09:e4:12: e0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6C:A9:03:C4:EE:7B:1D:6E:B7:6E:C1:FD:F2:74:7B:CD:78:BF:03 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/2FBEB0B0D5B011EC90A8A031C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.19.0/24 Signature Algorithm: sha256WithRSAEncryption 21:2d:a7:0f:04:71:d6:e0:d1:db:98:38:91:0d:0e:14:47:21: 7c:73:1f:44:2f:63:2d:cf:59:a5:88:dc:f5:29:de:2b:1c:12: c5:a9:fe:db:1f:aa:88:c2:80:a7:d0:12:96:e0:ee:dd:a8:3a: 48:ad:c3:55:42:4d:6f:bc:8b:46:87:6d:23:9d:67:8d:f7:85: 3c:ae:bc:0b:13:01:a7:05:5b:d5:10:27:dc:91:54:92:44:ad: da:76:bd:96:e9:93:6b:cd:fc:91:bc:1a:32:e9:44:9b:64:31: 1f:ad:31:12:ec:3a:34:7c:ab:df:ef:47:57:97:2b:e0:6b:14: 44:6d:31:03:a1:71:e5:f6:95:34:2d:9c:e0:e0:df:0d:40:b1: c1:cc:63:c1:40:0b:c2:5b:d7:46:a2:74:83:a8:c2:97:7b:35: 11:88:54:3c:f2:db:67:f6:84:f7:7e:26:a1:c6:3a:a5:d5:89: 95:66:2b:27:64:c4:10:82:0f:22:e1:f4:cf:e5:f8:61:23:7c: 52:e5:74:1a:ce:90:9c:63:9f:54:45:4b:72:5e:39:a4:52:24: ce:40:ab:f3:c5:d9:c4:d0:d5:0c:2d:a7:b3:98:6e:64:fb:b1: cb:8c:ab:bb:66:7a:38:f9:8c:59:8f:92:f9:21:29:2c:d2:70: 19:ee:9e:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwMTMxMTc1NjA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlkMGViOS05OTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohs5KD6VHTO2GXWnRrgPOdAh/iJkDtf0fZOz5L/xnlWXY8pU7Aknr09hRH9G Km1UhV+zwXLziQjjbtiaxyaRggymS3lcG4L1fOb3aNYenNung/8+TaQDHjjLQRjO 33N6hhRFoil2XFef+wGrBdXqxDV3YPw6luoLKR9eHalriWxTgsegOmc4C5eV3CvN BbkRXH0ZBkcNdOU0KGg61fro2galuJz47PmD3MzbjiXHWX3eZiqq7A2aSAlTc4Dl wautVF22uWzLiZ1bY7kKdOMyAS0W3cF4KlUgbaKzc+nj6vDymMSDa8A0Mh0M2A/Y meMdlFPXT1DL1rzyb8QJ5BLgQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOJsqQPE 7nsdbrduwf3ydHvNeL8DMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJEREQvQjRBMjgzNjI5RTFCMTFFOThFMUU0RTVFQzRGOUFFMDIvMkZCRUIwQjBE NUIwMTFFQzkwQThBMDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzxMwDQYJKoZIhvcNAQELBQADggEBACEtpw8Ecdbg0duY OJENDhRHIXxzH0QvYy3PWaWI3PUp3iscEsWp/tsfqojCgKfQEpbg7t2oOkitw1VC TW+8i0aHbSOdZ433hTyuvAsTAacFW9UQJ9yRVJJErdp2vZbpk2vN/JG8GjLpRJtk MR+tMRLsOjR8q9/vR1eXK+BrFERtMQOhceX2lTQtnODg3w1AscHMY8FAC8Jb10ai dIOowpd7NRGIVDzy22f2hPd+JqHGOqXViZVmKydkxBCCDyLh9M/l+GEjfFLldBrO kJxjn1RFS3JeOaRSJM5Aq/PF2cTQ1Qwtp7OYbmT7scuMq7tmejj5jFmPkvkhKSzS cBnunk8= -----END CERTIFICATE-----Generated at Sat Apr 5 03:25:33 2025 by rpki-client